This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa File: A6A53FA2D67E11EEAA2CA218C4F9AE02.roa (raw, json) Hash identifier: bTNV4aTVeq9VFDNnNuOyuxdvZKsKYr10sDmS/XuC6sg= Subject key identifier: 47:89:8A:D9:20:B3:85:D7:29:8C:D5:F6:D4:8E:0C:2F:CF:15:14:78 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0C8F Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa Signing time: Wed 31 Dec 2025 19:15:39 +0000 ROA not before: Wed 31 Dec 2025 19:15:39 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 38565 IP address blocks: 36.252.0.0/15 maxlen: 23 36.253.19.0/24 maxlen: 24 36.253.24.0/24 maxlen: 24 36.253.26.0/24 maxlen: 24 43.243.96.0/22 maxlen: 24 49.126.0.0/16 maxlen: 20 103.38.196.0/22 maxlen: 24 116.68.208.0/21 maxlen: 24 2400:9500::/32 maxlen: 32 2400:9500:4000::/36 maxlen: 44 2400:9500:6000::/36 maxlen: 44 2400:9500:8000::/36 maxlen: 44 2400:9500:c000::/36 maxlen: 44 2400:9500:e000::/36 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 Jan 2026 18:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3215 (0xc8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966, serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Dec 31 19:15:39 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6955765b-5733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:23:f6:46:2e:83:e4:0c:5d:02:ce:5c:96:4c: 1d:2a:05:49:68:b9:04:16:b2:ad:5b:55:76:3c:bf: 86:8d:a3:71:8c:21:3c:5f:ee:4e:15:13:e6:68:38: f9:00:dc:5c:a0:b8:bb:42:c3:4b:4d:a5:cc:59:6f: bb:e2:ea:e8:5f:97:3c:66:3a:6f:16:98:16:ee:b2: 25:82:46:72:d3:7e:8b:f2:3b:1e:75:30:c5:9d:b0: c4:42:5a:02:41:d8:33:24:8d:56:02:b6:dd:8a:06: 05:0d:26:55:bf:d4:5f:80:b8:94:f8:94:5f:84:57: 4e:01:32:6c:6f:8d:d8:8d:02:09:71:de:5f:83:49: a0:43:09:c6:43:40:94:56:9e:aa:55:a5:e3:30:b2: 41:1d:61:ec:52:a4:bc:70:99:3f:75:c2:84:63:ed: 3a:8b:34:dc:59:2b:0d:bb:ec:4e:53:d3:b7:4d:2b: db:e6:d4:b5:96:86:2d:f6:16:a9:0a:17:a0:37:6e: 40:f2:3a:5f:b8:f1:1c:fe:ec:56:6a:b6:93:4e:1c: 4f:8b:f5:57:65:7f:0f:6b:f1:85:e2:c5:1f:2f:b0: 4a:1e:1a:87:93:2e:60:15:f6:9b:26:5e:80:f1:17: d1:f9:b6:06:c3:a5:e2:23:9f:0b:51:34:81:a5:b7: 0a:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:89:8A:D9:20:B3:85:D7:29:8C:D5:F6:D4:8E:0C:2F:CF:15:14:78 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/A6A53FA2D67E11EEAA2CA218C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.252.0.0/15 43.243.96.0/22 49.126.0.0/16 103.38.196.0/22 116.68.208.0/21 IPv6: 2400:9500::/32 Signature Algorithm: sha256WithRSAEncryption 25:dc:e3:14:97:a2:2a:ae:d5:09:d8:fa:4b:8d:bf:04:ad:82: 7f:67:61:8f:12:58:a3:ea:a0:47:b0:69:bd:0a:19:cb:d7:a5: fe:8c:2d:c2:cd:fa:e6:13:c3:c9:cc:d8:b3:88:25:2c:0a:7b: b8:5b:67:22:d0:57:b5:fb:4f:98:a1:20:d9:2d:66:0d:63:35: fc:ef:3a:9c:37:5b:1b:72:a1:c3:92:16:62:52:ce:8b:23:98: 11:2d:43:42:99:4b:54:dc:7e:42:88:0d:45:ec:46:39:bc:33: 7f:ef:b6:63:3c:61:96:75:06:cd:05:f8:ad:37:4e:e9:d8:2f: 47:70:09:b4:44:d6:63:0f:e8:36:33:75:a5:83:ce:1f:86:aa: 63:79:58:32:f6:90:1a:6b:20:01:2f:af:c7:41:79:07:2c:41: c1:6c:0c:73:9f:b8:dc:2b:99:06:79:09:0b:84:0b:04:92:6f: bf:d7:3e:e6:16:8b:49:12:59:af:3f:39:40:93:8c:84:a7:fd: 43:8e:09:7c:3c:ca:44:96:67:61:f4:e3:75:75:68:9b:f0:6e: 6b:dd:00:c2:36:5c:8d:a7:1d:46:c3:b5:b0:e4:2c:32:1c:7a: 9d:0b:05:76:1b:7a:67:be:aa:d8:8d:34:e1:d9:a1:cc:21:9a: c2:12:39:d7 -----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgICDI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAwwIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjUxMjMxMTkxNTM5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDDA02OTU1NzY1Yi01NzMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCP2Ri6D5AxdAs5clkwdKgVJaLkEFrKtW1V2PL+GjaNxjCE8X+5OFRPmaDj5 ANxcoLi7QsNLTaXMWW+74uroX5c8ZjpvFpgW7rIlgkZy036L8jsedTDFnbDEQloC QdgzJI1WArbdigYFDSZVv9RfgLiU+JRfhFdOATJsb43YjQIJcd5fg0mgQwnGQ0CU Vp6qVaXjMLJBHWHsUqS8cJk/dcKEY+06izTcWSsNu+xOU9O3TSvb5tS1loYt9hap ChegN25A8jpfuPEc/uxWaraTThxPi/VXZX8Pa/GF4sUfL7BKHhqHky5gFfabJl6A 8RfR+bYGw6XiI58LUTSBpbcKPQIDAQABo4ICujCCArYwHQYDVR0OBBYEFEeJitkg s4XXKYzV9tSODC/PFRR4MB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvQTZBNTNGQTJE NjdFMTFFRUFBMkNBMjE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRAYIKwYBBQUHAQcBAf8E NTAzMCIEAgABMBwDAwEk/AMEAivzYAMDADF+AwQCZybEAwQDdETQMA0EAgACMAcD BQAkAJUAMA0GCSqGSIb3DQEBCwUAA4IBAQAl3OMUl6IqrtUJ2PpLjb8ErYJ/Z2GP Elij6qBHsGm9ChnL16X+jC3CzfrmE8PJzNiziCUsCnu4W2ci0Fe1+0+YoSDZLWYN YzX87zqcN1sbcqHDkhZiUs6LI5gRLUNCmUtU3H5CiA1F7EY5vDN/77ZjPGGWdQbN BfitN07p2C9HcAm0RNZjD+g2M3Wlg84fhqpjeVgy9pAaayABL6/HQXkHLEHBbAxz n7jcK5kGeQkLhAsEkm+/1z7mFotJElmvPzlAk4yEp/1Djgl8PMpElmdh9ON1dWib 8G5r3QDCNlyNpx1Gw7Ww5CwyHHqdCwV2G3pnvqrYjTTh2aHMIZrCEjnX -----END CERTIFICATE-----Generated at Mon Jan 12 03:00:26 2026 by rpki-client